⬆ Bump cryptography from 40.0.1 to 41.0.1

[dependabot[bot]]

Bumps cryptography from 40.0.1 to 41.0.1.

Changelog

Sourced from cryptography's changelog.

41.0.1 - 2023-06-01

* Temporarily allow invalid ECDSA signature algorithm parameters in X.509
  certificates, which are generated by older versions of Java.
* Allow null bytes in pass phrases when serializing private keys.
.. _v41-0-0:
41.0.0 - 2023-05-30

• BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1d has been removed. Users on older version of OpenSSL will need to upgrade.
• BACKWARDS INCOMPATIBLE: Support for Python 3.6 has been removed.
• BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.6.
• Updated the minimum supported Rust version (MSRV) to 1.56.0, from 1.48.0.
• Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.1.
• Added support for the :class:~cryptography.x509.OCSPAcceptableResponses OCSP extension.
• Added support for the :class:~cryptography.x509.MSCertificateTemplate proprietary Microsoft certificate extension.
• Implemented support for equality checks on all asymmetric public key types.
• Added support for [email protected] encrypted keys in :func:~cryptography.hazmat.primitives.serialization.load_ssh_private_key.
• Added support for obtaining X.509 certificate signature algorithm parameters (including PSS) via :meth:~cryptography.x509.Certificate.signature_algorithm_parameters.
• Support signing :class:~cryptography.hazmat.primitives.asymmetric.padding.PSS X.509 certificates via the new keyword-only argument rsa_padding on :meth:~cryptography.x509.CertificateBuilder.sign.
• Added support for :class:~cryptography.hazmat.primitives.ciphers.aead.ChaCha20Poly1305 on BoringSSL.

.. _v40-0-2:

40.0.2 - 2023-04-14

* Fixed compilation when using LibreSSL 3.7.2.
* Added some functions to support an upcoming ``pyOpenSSL`` release.
.. _v40-0-1:

Commits

• d02de9f changelog and version bump (#9008)
• 53dc686 Backport null fix (#9007)
• b999005 Backport tolerate (#9006)
• c4d494f 41.0.0 version bump (#8991)
• 8708245 new openssl day (#8990)
• 31436a4 admit to the existence of nuance in HKDF (#8987)
• 91e4189 Port DSA to Rust (#8978)
• f302d28 Update CI for new LibreSSL releases (#8975)
• 851d8cc Bump openssl from 0.10.52 to 0.10.53 in /src/rust (#8986)
• 0918c72 Bump coverage from 7.2.6 to 7.2.7 (#8985)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)